AMENDMENTS TO THE CLAIMS 



1. (Currently Amended) 1. A system of securely controlling a wireless mobile communication 
device, comprising: 

a plurality of domains residing on a wireless mobile communication device, at least one 
domain including a plurality of different types of assets of the wireless mobile communication 
device, the different types of assets within a domain requiring a common level of trust to access; 
and 

a domain controller, configured to control the plurality of domains o n the mobile device, 
for controlling access to the different types of assets that require a common level of trust to 
access within a domain configured to receive a request to perform an operation affecting at least 
one of the assets, to determine whether the request originated with an entity that has a trust 
relationship with the domain that includes the at least one affected asset, and to permit 
completion of the operation if the request originated with an entity that has a trust relationship 
with the domain that includes the at least one affected asset; 

wherein completion of the operation is not permitted if the request originated with an 
entity that does not have a trust relationship vidth the domain that includes the at least one 
affected asset. 

2. (Original) The system of claim 1, fiirther comprising a key store for storing cryptographic 
keys associated with the domain that includes the at least one affected asset, wherein the domain 
controller is configured to determine whether the request originated with an entity that has a trust 
relationship with the domain using the cryptographic keys. 
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3. (Original) The system of claim 1, wherein the domain controller is configured to determine 
whether the request originated with the entity that has a trust relationship with the domain that 
includes the at least one affected asset by determining whether the domain that includes the at 
least one affected asset also includes the entity. 

4. (Previously Presented) The system of claim 1, wherein the at least one domain fiirther 
includes as an asset a software appUcation for which the domain controller permits completion of 
the operation upon the software application if the request originated with an entity that has a trust 
relationship with the at least one domain that includes as an asset the software application; 

wherein completion of the operation is not permitted if the request originated with an 
entity that does not have a trust relationship with the at least one domain that includes the 
software application as an asset. 

5. (Original) The system of claim 4, wherein at least one of the domains comprises a plurality 
of domains, and wherein the wireless mobile commimication device ftuther comprises a super 
user software application that has a trust relationship with more than one of the plurality of 
domains. 

6. (Original) The system of claim 5, wherein each of the more than one of the pluralit>' of 
domains includes the super user software application. 
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7. (Original) The system of claim 1 . wherein the domain controller is further configured to 
receive information, and to place the information into a domain. 

8. (Original) The system of claim 1, wherein the at least one asset is selected from the group 
consisting of: 

communication pipes, persistent data, properties, and software applications. 

9. (Currently Amended) The system of claim 1, further comprising a data store for storing 
properties, wherein the domaui controller is further configured to determine whether the 
operation is permitted by properties in the data store, and to permit completion of the operation if 
the operation is permitted by the properties in the data store; 

wherein completion of the operation is not permitted if the operation is not permitted by 
the properties in the data store. 

10. (Original) The system of claim 9, wherein each property is global, domain-specific, or 
specific to a particular software application on the wireless mobile communication device. 

1 1 . (Currently Amended) A method for secure control of a wireless mobile communication 

device, comprising: 

segregating assets of the wireless mobile communication device into a plurality of 
domains, at least one domain including a plurality of different types of assets of the wireless 
mobile communication device, the different types of assets within a domain requiring a common 
level of trust to access; 
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receiving a request to perform an operation affecting at least one of the assets; 
j determining via a domain controller configured to control the plurality of domains on the 

mobile device whether the operation is permitted by the domain that includes the affected asset; 
and 

allowing the operation to be completed if the operation is permitted by the domain that 
includes the affected asset; 

wherein completion of the operation is not allowed if the operation is not permitted by 
the domain that includes the affected asset. 

12. (Original) The method of claim 11, wherein the step of determining comprises the step of 
determining whether the request originated with an entity that has a trust relationship with the 
domain that includes the at least one affected asset. 

13. (Original) The method of claim 12, wherein the step of determining whether the request 
originated vsdth an entity that has a trust relationship with the domain that includes the at least 
one affected asset comprises the step of determining whether the domain that includes the at least 
one affected asset also includes the entity. 

14. (Original) The method of claim 12, wherein the request originates from a software 
application, and wherein the step of determining whether the request originated with an entity 
that has a trust relationship with the domain that includes the at least one affected asset 
comprises the step of verifying a digital signature of the software application using a 
cryptographic key associated with the domain. 
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15. (Original) The method of claim 11, further comprising the steps of: 

receiving information; and 

associating the information with at-least one of the plurality of domains. 

16. (Original) The method of claim 15, wherein the step of ^sociating comprises the step of 
determining with which domains the information is to be associated in accordance with domain 
policies. 

17. (Original) The method of claim 16, wherein the domain policies specify that information is 
to be associated with domains based on one or more of: 

a source of the information, an indicator of a domain in the information, a communication 
pipe over which the information is received, a digital signature of the information, an access list 
describing allowed domain information, and an input from a user of the wireless mobile 
communication device. 

18. (Previously Presented) The method of claim 11, further comprising the step of: 

determining whether the operation is permitted by properties stored at the wireless mobile 
communication device, 

wherein the step of allowing comprises the step of allowing the operation to be completed 
if the operation is permitted by both the domain and the properties; 

wherein the operation is not allowed to be completed if the operation is not permitted by 
both the domain and the properties. 
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19. (Original) The method of claim 18, wherein the step of determining whether the operation is 
permitted by properties stored at the wireless mobile communication device comprises the step 
of checking global properties for the wireless mobile commimication device and domain 
properties for the domain that includes the at least one affected asset. 

20. (Original) The method of claim 19, wherein the request originates from a software 
application, and wherein the step of determining whether the operation is permitted by properties 
stored at the wireless mobile communication device further comprises the step of checking 
application properties for the software application. 

21. (Previously Presented) The system of claim 1, wherein one domain includes at least two 
different assets selected from the group of assets consisting of: communication pipes, persistent 
data, properties, and software applications. 
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